VP, Chief Information Security Office (CISO) Remote

We go where others won’t, taking on some of the biggest public health challenges to protect and enhance millions of lives, and create a better, more secure world. Here, you will join passionate professionals who advance their scientific, technical and professional skills to develop products designed-to protect and enhance life.

I: Job Summary 

Reporting to the CIO, the VP/CISO, will provide strategic and tactical leadership of global information security, disaster recovery, IT risk management, computer systems validation and compliance programs for the enterprise. He/she will establish and evolve the Information Security strategy & roadmaps to meet or exceed all regulatory agencies, government, client partnerships and compliance mandates utilizing a standard risk-based framework that can provide consistent & repeatable practices.   This leader will drive the technology and architectural direction including awareness programs that enables effective & lean delivery across the business & IT organizations that achieves cost optimization, quality improvement, bottom-line results while protecting and enabling the business from the evolving security threat landscape.   

The individual seeking this opportunity will be a strong thought & people leader with excellent communication skills that allow complex security concepts & risk topics be translated to reach diverse levels in the organization at the appropriate pace & speed.   This person is the key liaison and therefore must be an excellent collaborator across multiple disciplines including: business stakeholders, executive level technology risk areas, regulatory agencies, compliance partners & the Board of Directors. 

II: Responsibilities 

Key Responsibilities:

• Sets the vision, strategy & direction for the development & implementation of comprehensive information security, disaster recovery, IT risk management & compliance programs.
• Own Board of Directors & Executive level communication and interaction including consulting, understanding of business strategies and translating complex information security threats, risks & programs into achievable, sustainable and innovative technology solutions, capability maturity roadmaps.
• Develop and deliver a tiered security dashboard appropriate for each level of cybersecurity governance.  Proactively identify problems, measure progress and continuously improve cybersecurity operations. 
• Create & lead the development of an enterprise Information security awareness program to ensure compliance & that the organization understands the trade-off between risk and return.
• Understand and translate the trade-offs required to manage the different levels of risk tolerance and risk exposure across the organization and balance this with risk investments
• Leads team to successfully implement security standards, procedures & guidelines for the enterprise as well as reporting security performance against established security metrics.
• Ensures and monitors security compliance with industry and government rules and regulations. (e.g., GDPR, HIPAA, ISO 27001, SEC)
• Build, develop and retain cybersecurity talent.  Support employees in their career development by providing guidance on career paths, opportunities for advancement, and skill development. Develop and implement initiatives to enhance employee engagement, satisfaction, and retention.
• Liaise with external agencies, such as law enforcement and other advisory bodies as necessary, to ensure that the organization maintains a strong security posture.
• Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action.
• Develop and oversee effective disaster recovery policies and standards to align with enterprise business continuity management program goals.
• Set the vision, strategy, and direction for the organization incident response management program.  Integrate with the business continuity and crisis management programs.
• Provide leadership of the IT Computer Systems Validation (CSV) team responsibilities and accountabilities.
• Provide strong leadership through mentoring, career development, teamwork, values, to increase overall employee engagement
• Fiscal stewardship in all aspects in all areas of responsibility

The above statements are intended to describe the general nature of work performed by those in this job.  It is not an exhaustive list of all duties, and other duties may be assigned.

III: Education, Experience & Skills

• Bachelor’s degree in IT, business, or related discipline required; Master’s degree in Business Administration or related field preferred
• Minimum of 15+ years of experience in Information Security
• Minimum of 5+ years of experience as Chief Information Security Officer (CISO) serving as an organizations lead security executive
• Minimum of 7 - 10 years of experience within the pharmaceutical industry, preferably within pharmaceutical manufacturing facility operations.
• Technical understanding of applications, networks, and databases. Understanding of Cloud technologies (e.g. SaaS, PaaS, IaaS)
• Experience in the Defense industry preferred.
• Industry recognized certifications in the information security and risk management fields with knowledge of national and international regulatory compliances & frameworks.
• Deep understanding of CSV guidelines issued by regulatory agencies including FDA and MHRA and standards such as GAMP5.
• Well respected team player with excellent skills at building and managing relationships at all levels with a demonstrated ability to manage cross-functional teams.
• Visionary leader with strong business acumen and a detailed working knowledge of information security technologies, practices, policies, and their application
• A great communicator in both written and oral communication.
• A passion for quality and value in all that is delivered.
• A no nonsense approach to getting things done.
  
  

U.S. Base Pay Ranges and Benefits Information

The estimated annual base salary as a new hire for this position ranges from [$267,500 to $323,600]. Individual base pay depends on various factors such as applicant’s education, experience, skills, and abilities, as well as internal equity and alignment with market data.  The salary may also be adjusted based on applicant’s geographic location.  Certain roles are eligible for additional incentive compensation, including merit increases, annual bonus, [and/or long-term incentives in the form of stock options.]

Additionally, Emergent offers a comprehensive benefits package*.  Information regarding additional benefits can be found here:  https://www.emergentbiosolutions.com/careers/life-at-emergent

(*Eligibility for benefits is governed by the applicable plan documents and policies).

If you are selected for an interview, please feel welcome to speak to a Human Resources Partner about our compensation philosophy and available benefits.

There are physical/mental demands and work environment characteristics that must be met by an individual to successfully perform the essential functions of the job. This information is available upon request from the candidate.

Reasonable accommodations may be made to enable individuals with disabilities to perform all essential functions.

Emergent BioSolutions is an Equal Opportunity/Affirmative Action Employer and values the diversity of our workforce.  Emergent does not discriminate on the basis of race, color, creed, religion, sex or gender (including pregnancy, childbirth, and related medical conditions), gender identity or gender expression (including transgender status), sexual orientation, age, national origin, ancestry, citizenship status, marital status, physical or mental disability, military service or veteran status, genetic information or any other characteristics protected by applicable federal, state or local law.

Information submitted will be used by Emergent BioSolutions for activities related to your prospective employment. Emergent BioSolutions respects your privacy and any use of the information submitted will be subject to the terms of our Privacy Policy .

Emergent BioSolutions does not accept non-solicited resumes or candidate submittals from search/recruiting agencies not already on Emergent BioSolutions’ approved agency list. Unsolicited resumes or candidate information submitted to Emergent BioSolutions by search/recruiting agencies not already on Emergent BioSolutions’ approved agency list shall become the property of Emergent BioSolutions and if the candidate is subsequently hired by Emergent BioSolutions, Emergent BioSolutions shall not owe any fee to the submitting agency.